Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
67
data securityresearch paperfinancial dataFC '02: Call For Papers On Financial Data Security And Digital Commerce
Original papers are solicited on all aspects of financial data security and digital commerce for submission to the Sixth Annual Conference on Financial Cryptography (FC '02). FC '02 brings together researchers in the financial, legal, cryptologic, and data security fields to foster cooperation and exchange of ideas.. . . . Original papers are solicited on all aspects of financial data security and digital commerce for submission to the Sixth Annual Conference on Financial Cryptography (FC '02). FC '02 brings together researchers in the financial, legal, cryptologic, and data security fields to foster cooperation and exchange of ideas. . Investigate avenues to present your findings on monetary data protection and electronic trading at FC '02.. Financial Security, Digital Commerce, Cryptographic Research, Data Protection. . LinuxSecurity.com Team
Oct 10, 2023
•
Cryptography
210
research paperattack vectorhardware exploitResearch on FPGA Cards Improving Rowhammer Attack Efficiency
In a new research paper published on the last day of 2019, a team of American and German academics has shown that field-programmable gate array (FPGA) cards can be abused to launch better and faster Rowhammer attacks. Learn more about how FPGA cards can be abused for faster and more reliable Rowhammer attacks: . The new research expands on previous work into an attack vector known as Rowhammer . Rowhammer attacks were first detailed in 2014. The attack exploits a design flaw in the hardware modern memory cards -- most commonly known as RAM. The link for this article located at ZDNet is no longer available. . The latest study builds upon earlier findings about a vulnerability termed Rowhammer, uncovering exploitation through FPGA manipulation.. Rowhammer Exploit, FPGA Attacks, Memory Exploitation. . Brittany Day
Jan 02, 2020
•
Security Vulnerabilities
76
security innovationinformation securityworkshopCall for Papers: New Security Paradigms Workshop Insights
NSPW is a unique workshop that is devoted to the critical examination of new paradigms in security. Each year, since 1995, we examine proposals for new principles upon which information security can be rebuilt from the ground up. We conduct extensive, highly interactive discussions of these proposals, from which we hope both the audience and the authors emerge with a better understanding of the strengths and weaknesses of what has been discussed. . In his seminal book "The Structure of Scientific Revolutions", Thomas Kuhn describes the progress of science as "a series of peaceful interludes punctuated by intellectually violent revolutions." These revolutions, which he called "paradigm shifts", are periods during which "one conceptual world view is replaced by another." A paradigm shift is thus not an incremental contribution to an established branch of science; it is an attempt to replace the fundamental dogma of a branch of science with a different, and completely incompatible, set of core principles. The New Security Paradigms workshop is dedicated to the proposition that what Kuhn called "anomalies" - signs that the prevailing paradigm can no longer explain phenomena observed in the real world - are already visible in the science of information security, and, indeed, that the anomalies are so obvious and so serious that the prevailing information security paradigm is or soon will be in crisis. NSPW aspires to be the philosophical and intellectual breeding ground from which a revolution in the science of information security will emerge. We solicit and accept papers on any topic in information security subject to the following caveats: Papers that present a significant shift in thinking about difficult security issues are welcome. Papers that build on a recent shift are also welcome. Contrarian papers that dispute or call into question accepted practice or policy in security are also welcome. We solicit papers that are not technology-centric,including those that deal with public policy issues and those that deal with the psychology and sociology of security theory and practice. We discourage papers that represent established or completed works as well as those that substantially overlap other submitted or published papers. We discourage papers which extend well-established security models with incremental improvements. We encourage a high level of scholarship on the part of contributors. Authors are expected to be aware of related prior work in their topic area, even if it predates Google. In the course of preparing an NSPW paper, it is far better to read an original source than to cite a text book interpretation of it. Our program committee particularly looks for new paradigms, innovative approaches to older problems, early thinking on new topics, and controversial issues that might not make it into other conferences but deserve to have their try at shaking and breaking the mold. Participation in the workshop is limited to authors of accepted papers and conference organizers. Each paper is typically the focus of 45 to 60 minutes of presentation and discussion. Prospective authors are encouraged to submit ideas that might be considered risky in some other forum, and all participants are charged with providing feedback in a constructive manner. The resulting intensive brainstorming has proved to be an excellent medium for furthering the development of these ideas. The proceedings, which are published after the workshop, have consistently benefited from the inclusion of workshop feedback. We welcome three categories of submission: Research papers. These should be of a length commensurate with the novelty of the paradigm and the amount of novel material that the reviewer must assimilate in order to evaluate it. Position papers. These should be 5 - 10 pages in length and should espouse a well reasoned and carefully documented position on a security related topic that merits challenge and / or discussion. Discussion topic proposals. Discussion topic proposals should include an in-depth description of the topic to be discussed, a convincing argument that the topic will lead to a lively discussion, and supporting materials that can aid in the evaluation of the proposal. The later may include the credentials of the proposed discussants. Discussion topic proposers may want to consider involving conference organizers or previous attendees in their proposals. Submissions must include the following: The submission in PDF format, viewable by Adobe Acrobat reader. A justification for inclusion in NSPW. Specify the category of your submission and describe, in one page or less, why your submission is appropriate for the New Security Paradigms Workshop. A good justification will describe the new paradigm being proposed, explain how it departs from existing theory or practice, and identify those aspects of the status quo it challenges or rejects. The justification is a major factor in determining acceptance. An Attendance Statement specifying how many authors wish to attend the workshop. Accepted papers require the attendance of at least one author for the entire duration of the workshop. Attendance is limited, and we cannot guarantee space for more than one author. No submission may have been published elsewhere nor may a similar submission be under consideration for publication or presentation in any other forum during the NSPW review process. The submission deadline is Monday, 26 March 2006. Notification of acceptance will be Monday, 28 May, 2006. Workshop proceedings will be published by the ACM and put in the ACM digital library. In order to ensure that all papers receive equally strong feedback, all attendees are expected to stay for the entire duration of the workshop. We expect to offer a limited amount of financial aid to those who requireit. See https://www.nspw.org/ for details of the workshop policies and for submission procedures. . Delve into groundbreaking ideas in cybersecurity at NSPW, scrutinizing innovative frameworks that question existing methodologies.. NSPW, Research Papers, Security Innovations, Security Paradigms. . Brittany Day
Feb 03, 2006
•
Organizations/Events
76
security advisoryaccess controlresearch paperUSENIX Symposium: Edward Felten's Research on Music Access Risks
The USENIX Association today confirmed the inclusion of a controversial research paper to its Security Symposium to be held in Washington, DC next month. The paper reveals inherent security risks with the recording industry's digital music access-control technologies. Dr. Edward Felten, . . . . The USENIX Association today confirmed the inclusion of a controversial research paper to its Security Symposium to be held in Washington, DC next month. The paper reveals inherent security risks with the recording industry's digital music access-control technologies. Dr. Edward Felten, the Princeton University scientist who was a key member of the research team, will also participate in a panel discussion about the paper's recent legal wrangles. The paper first came under fire from the recording industry in April 2001, when Felten and other scientists from Princeton and Rice Universities were prevented from presenting the paper at the 4th International Information Hiding Workshop. By June 2001, the research team, USENIX, and the Electronic Frontier Foundation (EFF) jointly asked a federal court for First Amendment protections for the researchers and the paper. Although, RIAA, SDMI, and Verance have since filed motions to dismiss and claim there was never a real threat of litigation, the EFF continues to seek protection for all private defendants and their ability to produce and publish future work based on their research. The link for this article located at Newsforge is no longer available. . Attend the USENIX Security Symposium to explore critical vulnerabilities in digital music security, featuring expert insights, analysis, and strategies for safeguarding artists and consumers. USENIX Security Symposium, Music Access Control Risks, Edward Felten Research, Digital Rights Protection. . Anthony Pell
Jul 20, 2001
•
Organizations/Events
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More